logangoins / StifleLinks
.NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCS
☆148Updated 5 months ago
Alternatives and similar repositories for Stifle
Users that are interested in Stifle are comparing it to the libraries listed below
Sorting:
- Local SYSTEM auth trigger for relaying☆129Updated last week
- A tool for coercing and relaying Kerberos authentication over DCOM and RPC.☆115Updated 2 weeks ago
- Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning☆131Updated 3 months ago
- Lateral movement with DCOM DLL hijacking☆133Updated last month
- ☆140Updated 2 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆204Updated 9 months ago
- ☆188Updated 4 months ago
- Lateral Movement☆124Updated last year
- ☆57Updated 5 months ago
- TokenCert☆98Updated 8 months ago
- ☆83Updated last year
- An impacket-lite cli tool that combines many useful impacket functions using a single session.☆51Updated last week
- AzureAD beacon object files☆121Updated 7 months ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆95Updated 3 months ago
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆122Updated 10 months ago
- Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…☆77Updated last month
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆115Updated last year
- Adversary Emulation Framework☆121Updated last month
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆123Updated 4 months ago
- Build sneaky & malicious LNK files.☆94Updated 2 weeks ago
- A BOF to enumerate system process, their protection levels, and more.☆117Updated 8 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆100Updated 2 months ago
- ☆220Updated 9 months ago
- A Python POC for CRED1 over SOCKS5☆151Updated 9 months ago
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆140Updated 4 months ago
- Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijacking☆64Updated last month
- Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.☆157Updated 7 months ago
- ☆107Updated 5 months ago
- Advanced In-Memory PowerShell Process Injection Framework☆67Updated 2 weeks ago
- ☆68Updated 2 months ago